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RELATED APPEALS AND INTERFERENCES 

The Appellant knows of no related appeals or interferences that might directly 
affect or be directly affected by or have bearing on the Board's decision in the pending 
appeal. 

STATUS OF CLAIMS 

Claims 1-16 are pending in the application. Claims 1-16 were originally 
presented in the application. Claims 1-16 stand rejected in view of several references 
as discussed below. The rejection of claims 1-16 based on the cited references is 
appealed. The pending claims are shown in the attached Appendix. 

STATUS OF AMENDMENTS 

Claims 5 and 13 were amended in a response to an Office Action dated August 
2, 2004, filed on December 2, 2004, to correct informalities. No amendments to the 
claims, in this application, were submitted subsequent to final rejection. The Appellant 
is appealing the claims as they read at the time the final rejection was issued. These 
claims are shown in the attached Appendix. 

SUMMARY OF CLAIMED SUBJECT MATTER 

The present invention provides for a method and device-readable medium 
storing program instructions pertaining to backing up one or more files on a local device 
onto remote servers over a network. In the embodiment of independent claim 1 f the 
invention comprises deriving (303) a first cryptographic key and a second cryptographic 
key from a user-provided passphrase. (See e.g., Appellant's specification, pg. 4, para. 
[00141.) Then the method compresses (304) one or more files and adds (304) each of 
the files to a bundle (200). (See Id. at pg. 5, para. [0015].) Next, an authentication code 
(228) for the bundle (200) using the first cryptographic key is generated (306) and the 
authentication code (228) is added to the bundle (306). (See Id.) The method 
concludes by encrypting (307) the bundle (200) using the second cryptographic key 
prior to sending the bundle to the remote server. (See Id.) 

In the embodiment of independent claim 5, a method for restoring one or more files 
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on remote servers to a local device over a network is described. The method comprises 
deriving (402) a first cryptographic key and a second cryptographic key from a user- 
provided passphrase. (See e.g., Appellant's specification, page 6, para. [0019].) Then 
the method decrypts (407) a bundle (200) received from the remote server using the 
second cryptographic key. (See Id.) Next, an authentication code (228) in the bundle 
(200) is checked (408) using the first cryptographic key. (See Id.) The method 
concludes by decompressing (409) one or more files from the bundle (200). (See Id.) 

In the embodiment of independent claim 9, a device-readable medium storing 
program instructions for performing a method of backing up one or more files on a local 
device onto remote servers over a network is described. The program instructions for 
the method stored on the device-readable medium comprises deriving (303) a first 
cryptographic key and a second cryptographic key from a user-provided passphrase. 
(See e.g., Appellant's specification, pg. 4, para. [0014].) Then the method compresses 
(304) one or more files and adds (304) each of the files to a bundle (200). (See Id. at 
pg. 5, para. [0015].) Next, an authentication code (228) for the bundle (200) using the 
first cryptographic key is generated (306) and the authentication code (228) is added to 
the bundle (306). (See Id.) The method concludes by encrypting (307) the bundle 
(200) using the second cryptographic key prior to sending the bundle to the remote 
server. (See Id.) 

In the embodiment of independent claim 13, a device-readable medium storing 
program instructions for performing a method of restoring one or more files on remote 
servers to a local device over a network is described. The program instructions for the 
method stored on the device-readable medium comprises deriving (402) a first 
cryptographic key and a second cryptographic key from a user-provided passphrase. 
(See e.g., Appellant's specification, page 6, para. [0019].) Then the method decrypts 
(407) a bundle (200) received from the remote server using the second cryptographic 
key. (See Id.) Next, an authentication code (228) in the bundle (200) is checked (408) 
using the first cryptographic key. (See Id.) The method concludes by decompressing 
(409) one or more files from the bundle (200). (See Id.) 
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GROUNDS OF REJECTION TO BE REVIEWED ON APPEAL 

Claims 1-2, 4-6, 8-10, 12-14 and 16 stand rejected under 35 U.S.C. §103(a) as 
being obvious over Bailey, III (U.S. Patent 5,659,614, issued August 19, 1997, 
hereinafter referred to as "Bailey") in view of Cane, et al. (U.S. Patent 5,940,507, issued 
August 17, 1999, hereinafter referred to as "Cane"). Claims 3 f 7, 11 and 15 stand 
rejected under 35 U.S.C. §1 03(a) as being obvious over Bailey in view Cane in further 
view of Walmsley (US Publication 2004/0049468, published March 11, 2004, hereinafter 
referred to as 'Walmsley"). 

ARGUMENT 

A. 35 U.S.C. §103(a) - Bailey in view of Cane 

1. Claim 1 

The Examiner has rejected claim 1 in the Office Action under 35 U.S.C. §103 as 
being unpatentable over Bailey in view of Cane. Appellant respectfully traverses the 
rejection. 

Bailey teaches a method and system for creating and storing a backup copy of 
file data stored on a computer. "The file data to be backed up is encrypted using 
multiple, indirect encryption keys, variable block lengths, and variable algorithms based 
on a client-selected string of characters. The files are thereafter encrypted again at the 
client site prior to transmission to the backup site. A program registry is maintained at 
the backup site that contains a master copy of many commercially-available files. The 
incoming files received from the client site are compared to the files in the program 
registry. If an incoming file is located in the registry, the file is replaced by a token 
identifying the commercially-available file and the token is stored at the backup facility." 
(See Bailey, Abstract.) 

Cane teaches an information process system that provides archive/backup 
support with privacy assurance by encrypting relevant stored data. Notably, data 
generated on a source system is encrypted, the key used thereby is separately 
encrypted, and both the encrypted data and encrypted key are transmitted to and 
maintained by a data repository system. (See Cane, Abstract) 

The Appellant respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination, fails to teach or to suggest the novel concept 
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of deriving a first cryptographic key and a second cryptog raphic kev from a user- 
provided passphrase and generating an authentication cod e for a bundle that is 
ultimately added to and encrypted with the bundle , as positively claimed by the 
Appellant's independent claim 1. Specifically, Appellant's independent claim 1 
positively recites: 

1 . A method of backing up one or more files on a local device onto remote 
servers over a network comprising: 

deriving a first cryptographic kev and a second crypto graphic kev from a 
user-provided passphrase: 

compressing one or more files and adding each of the files to a bundle; 

generating an authentication code for the bundle using the first 
cryptographic kev and adding the authentication code to the bundle: and 

encrypting the bundle using the second cryptographic key prior to sending 
the bundle to the remote server. (Emphasis added.) 

In one embodiment, the Appellant's invention provides a method for backing up 
files from a local device onto remote servers over a network comprising deriving a first 
cryptographic kev and a second cryptographic kev from a user-provided passphrase 
and generating an authentication code using the first cryptog raphic kev for a bundle that 
is ultimately added to and encrypted with the bundle . The derivation step is performed 
after proactively checking the passphrase for a necessary amount of entropy. (See 
e.g., Appellant's specification, page 4, para. [0013].) In addition, due to the nature of 
how the bundle is constructed, the file system structure and the file names are 
advantageously hidden from the remote server and from anyone listening in on the 
network. (See Id. at page 6, para. [0016].) Consequently, the strong encryption and 
authentication properties make them tamper evident and opaque to anyone who cannot 
obtain a user passphrase or break the authentication and encryption files. (See Id. at 
page 7, para. [0020].) 

The Appellant respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination fails to teach or to suggest a method for 
backing up files from a local device onto remote servers over a network comprising 
deriving a first cryptographic kev and a second cryptograp hic kev from a user-provided 
passphrase . Bailey explicitly teaches that "[t]he second encryption is performed by the 
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transmission program based upon internally generated keys ." (See Bailey, col. 17, II. 
14-16, emphasis added, see also, Bailey, col. 18, II. 26-28, "while the second level of 
encryption is performed by the transmission program that generates its own key.", 
emphasis added.) 

In addition, Bailey states that the client key is derived from a client selected string 
of characters and the actual encryption key used to encrypt the data is derived from the 
client key . In other words, the actual encryption key is not generated from the string of 
characters, but from the client key instead. (See Bailey Column 17, lines 1-5). 

Cane fails to bridge the substantial gap left by Bailey because Cane specifically 
teaches using a cryptographic engine 14 and key generator 16. (See Cane, col. 3, II. 51 
and 56, FIG. 1.) Similar to the gap found in Bailey, Cane's keys are also not derived 
from a user-provided passphrase. As such, this element in Appellant's claims is 
completely absent in both references. 

Moreover, as indicated by the Examiner on page 3 of the Final Office Action, 
Bailey fails to disclose the generation of an authentication code for the bund le using the 
first cryptographic kev and adding the authentication code to the bundle . However, the 
Examiner alleges that Cane teaches this limitation. The Examiner specifically points to 
Cane, col. 4, 11.1-27. 

The Appellant respectfully submits that the Examiner has interpreted Cane too 
broadly and must look at Cane in its entirety. The passage cited by the Examiner 
reads: 

"Transmission may be accomplished via Internet 26, dialup connection 28, or in 
alternative embodiments, other means such as physical delivery of the storage 
medium. Encryption may be performed by any of various known methods, such 
as RSA, DES, and other permutations and may involve authentication and 
verification either through a trusted third party or mathematical methods. Such 
authentication and verification may involve cipher block chaining (CBC), to 
perform an XOR on all or part of a previous block and use the resultant value in 
encrypting a successive block, or checksums such as cyclic redundancy checks 
(CRC), MD4, and MD5, which accumulate all values in a particular block 
according to a mathematical formula to arrive at a value which is highly unlikely 
to be duplicated if data in the block is changed or lost." 
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The Appellant respectfully submits that this passage clearly fails to specifically teach 
generating an authentication code using the first c ryptographic key for a bundle that is 
ultimately added to and encrypted with the bundle , as positively recited in the 
Appellant's independent claim 1. The portion of the cited passage mentioning 
"transmissions" refers to the transmission of encrypted file 20 and encrypted key 24 
mentioned earlier in the paragraph and not to the following discussion on encryption. 
Therefore, contrary to the Examiner's assertion, this passage does not teach that 
checksums such as CRC, MD4 and MD5 are a part of the "transmission". The 
Appellant respectfully submits that the cited passage in Cane at best generally 
describes the various methods of encryption and authentication and not generating an 
authentication code using the first cryptographic kev for a bundle that is ultimately 
added to and encrypted with the bundle , as positively claimed by the Appellant's 

independent claim 1 . 

Furthermore, the alleged combination (as taught by Cane) clearly teaches away 
from the Appellant's invention because Cane teaches that a master key is obtained and 
used to encrypt a secondary key and produce an encrypted key that is separate from 
the encrypted file. (See Cane, col. 3, II. 56-61, emphasis added.) The encrypted file 
and the encrypted key are then transmitted as separate entities (i.e. not in a single 
bundle or file) to the archive server as indicated in separate steps 1 16 and 118. (See 
Cane, FIG. 2.) Consequently, the Appellant respectfully submits that independent claim 
1 fully satisfies the requirements of 35 U.S.C. § 103 and is patentable thereunder. 

2. Claim 2 

Claim 2 stands rejected under 35 U.S.C. §103 as being unpatentable over Bailey 
in view of Cane. Appellant respectfully traverses the rejection. 

The Appellant submits that Bailey and Cane do not, in any permissible 
combination, teach, show, or suggest all of the limitations of independent claim 1 . Since 
Bailey and Cane do not make obvious the Appellant's invention as recited in Appellant's 
independent claim 1, dependent claim 2 is also not made obvious since the claim 
depends directly from claim 1 and recites additional features of the present invention. 
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Thus, claim 2 should be deemed patentable for at least the reasons stated above with 
respect to independent claim 1 . 

Secondly, the Appellant contends that the combination of Bailey and Cane does 
not teach the novel concept of a method for backing up files from a local device onto 
remote servers over a network comprising deriving a f irst cryptographic key and a 
second cryptographic kev from a user-provided p assphrase and generating an 
authentication code using the first cryptographic kev for a bundle that is ultimately 
added to and encrypted with the bundle in combination with encrypting the bundle using 
a strong block cipher, as set forth in claim 2. Encrypting the bundle with a strong block 
cipher ensures greater security. This novel approach is absent in the alleged 
combination of Bailey with Cane. Thus, the Appellant respectfully submits that claim 2 
is patentable under the provisions of 35 U.S.C. §103. 

3. Claim 4 

Claim 4 stands rejected under 35 U.S.C. §103 as being unpatentable over Bailey 
in view of Cane. Appellant respectfully traverses the rejection. 

The Appellant submits that Bailey and Cane do not, in any permissible 
combination, teach, show, or suggest all of the limitations of independent claim 1 . Since 
Bailey and Cane do not make obvious the Appellant's invention as recited in Appellant's 
independent claim 1, dependent claim 4 is also not made obvious since the claim 
depends directly from claim 1 and recites additional features of the present invention. 
Thus, claim 4 should be deemed patentable for at least the reasons stated above with 
respect to independent claim 1 . 

Secondly, the Appellant contends that the combination of Bailey and Cane does 
not teach the novel concept of a method for backing up files from a local device onto 
remote servers over a network comprising deriving a first cryptographic key and a 
second cryptographic kev from a user-provided passphrase and generating an 
authentication code using the first cryptographic kev fo r a bundle that is ultimately 
added to and encrypted with the bundle in combination with the cryptographic keys 
containing at least 128 bits, as set forth in claim 4. Cryptographic keys containing at 
least 128 bits ensures greater security. This novel approach is absent in the alleged 



PACE 12m • RCVD AT 4/17/2000 10:01:05 PM (Eastern Daylight Time] • SVR:USPTO-EFXRF-6/33 * DNrS:2738300 • CSID:732 530 0808 * DURATION (mm-ss):12-12 



04/17/2006 21:05 FAX 732 530 9808 PATTERSON & SHERIDAN - PTO @ 013/034 



BRIEF ON APPEAL 
Serial No. 09/682,526 
Page 9 of 30 

combination of Bailey with Cane. Thus, the Appellant respectfully submits that claim 4 
is patentable under the provisions of 35 U.S.C. §103. 

4. Claim 5 

The Examiner has rejected claim 5 in the Office Action under 35 U.S.C. §103 as 
being unpatentable over Bailey in view of Cane. Appellant respectfully traverses the 
rejection. 

The teachings of Bailey and Cane are discussed above. 

The Appellant respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination, fails to teach or to suggest the novel concept 
of deriving a first cryptographic kev and a second cryptographic key from a user- 
provided oassphrase and checking for an authent ication code in the compressed 
bundle , as positively claimed by the Appellant's independent claim 5. Specifically, 
Appellant's independent claim 5 positively recites: 

5. A method of restoring one or more files on remote servers to a local device 
over a network comprising: 

deriving a first cryptographic kev and a sec ond cryptographic kev from a 

user-provided passohraase ; 

decrypting a bundle received from the remote server using the second 

cryptographic key; . .. 

checking an authentication code in the bundle using the first cryptographic 

key; and tt _ ■ , . 

decompressing one or more files from the bundle. (Emphasis added.) 

In one embodiment, the Appellant's invention provides a method for restoring 
files on remote servers to a local device over a network comprising deriving a first 
cryptographic kev and a second cryptographic kev from a user-provided passphrase 
and checking for an authentication code in the co mpressed bundle. The derivation step 
is performed after proactively checking the passphrase for a necessary amount of 
entropy. (See e.g., Appellant's specification, page 4, para. [0013].) In addition, due to 
the nature of how the bundle is constructed, the file system structure and the file names 
are advantageously hidden from the remote server and from anyone listening in on the 
network. (See Id. at page 6, para. [0016].) Consequently, the strong encryption and 
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authentication properties make them tamper evident and opaque to anyone who cannot 
obtain a user passphrase or break the authentication and encryption files. (See Id. at 
page 7, para. [0020].) 

The Appellant respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination fails to teach or to suggest a method for 
backing up files from a local device onto remote servers over a network comprising 
deriving a first cryptographic key and a second cryptographic key from a user-provided 
passphrase . Bailey explicitly teaches that "[t]he second encryption is performed by the 
transmission program based upon internally generated keys " (See Bailey, col. 17, II. 
14-16, emphasis added, see also, Bailey, col. 18, II. 26-28, "while the second level of 
encryption is performed by the transmission program that generates its own key .", 
emphasis added.) 

In addition, Bailey states that the client key is derived from a client selected string 
of characters and the actual encryption key used to encrypt the data is derived from the 
client key . In other words, the actual encryption key is not generated from the string of 
characters, but from the client key instead. (See Bailey Column 17, lines 1-5). Cane 
fails to bridge the substantial gap left by Bailey because Cane specifically teaches using 
a cryptographic engine 14 and key generator 16. (See Cane, col. 3, II. 51 and 56, FIG. 
1.) Similar to the gap found in Bailey, Cane's keys are also not derived from a user- 
provided passphrase. As such, this element in Appellant's claims is completely absent 
in both references. 

Appellant also respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination fails to teach or to suggest a method for 
restoring files on remote servers to a local device over a network comprising checking 
for an authentication code in the compressed bundle . As indicated on page 4 of the 
Final Office Action by the Examiner, Bailey does not expressly disclose the checking of 
an authentication code in the bundle using the first cryptographic key. However, the 
Examiner alleges that Cane teaches this limitation. 

The Appellant respectfully submits that Bailey and Cane do not disclose, mention 
or suggest the checking of an authentication code in a bundle using the first 
cryptographic key . More specifically, the Appellant contends that Cane only teaches an 
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archive server that first writes the encrypted file to a medium and subsequently writes 
the encrypted key to another medium separately. Notably, the Appellant submits that 
Cane does not teach a checking process of any type. Therefore, the Appellant 
contends that since a bundle comprising an authentication code along with a plurality of 
files is not taught by Cane, it is impossible for the bundle to be checked (i.e., since a 
bundle does not exist.) 

In fact, the alleged combination (as taught by Cane) teaches awav from the 
Appellant's invention because the recovery process taught by Cane specifically teaches 
that first the secondary key must be recovered by decrypting the encrypted key with the 
master key , which is located separately on cryptographic engine 14. (See Cane, col. 4, 
II. 27-37, FIG 1.) Then the original file is recovered by decrypting the encrypted file with 
the secondary key , which is also located separately. (See Id.) Consequently, the 
Appellant respectfully submits that independent claim 5 fully satisfies the requirements 
of 35 U.S.C. § 103 and is patentable thereunder. 

5. Claim 6 

Claim 6 stands rejected under 35 U.S.C. §103 as being unpatentable over Bailey 
in view of Cane. Appellant respectfully traverses the rejection. 

The Appellant submits that Bailey and Cane do not, in any permissible 
combination, teach, show, or suggest all of the limitations of independent claim 5. Since 
Bailey and Cane do not make obvious the Appellant's invention as recited in Appellant's 
independent claim 5, dependent claim 6 is also not made obvious since the claim 
depends directly from claim 5 and recites additional features of the present invention. 
Thus, claim 6 should be deemed patentable for at least the reasons stated above with 
respect to independent claim 5. 

Secondly, the Appellant contends that the combination of Bailey and Cane does 
not teach the novel concept of a method for restoring files on remote servers to a local 
device over a network comprising deriving a first cryptog raphic kev and a second 
cryptographic kev from a user-provided oassphrase and checking for an authentication 
code in the compressed bundle in combination with encrypting the bundle using a 
strong block cipher, as set forth in claim 6. Encrypting the bundle with a strong block 
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cipher ensures greater security. This novel approach is absent in the alleged 
combination of Bailey with Cane. Thus, the Appellant respectfully submits that claim 6 
is patentable under the provisions of 35 U.S.C. §103. 

6. Claim 8 

Claim 8 stands rejected under 35 U.S.C. §103 as being unpatentable over Bailey 
in view of Cane. Appellant respectfully traverses the rejection. 

The Appellant submits that Bailey and Cane do not, in any permissible 
combination, teach, show, or suggest all of the limitations of independent claim 5. Since 
Bailey and Cane do not make obvious the Appellant's invention as recited in Appellant's 
independent claim 5, dependent claim 8 is also not made obvious since the claim 
depends directly from claim 5 and recites additional features of the present invention. 
Thus, claim 8 should be deemed patentable for at least the reasons stated above with 
respect to independent claim 5. 

Secondly, the Appellant contends that the combination of Bailey and Cane does 
not teach the novel concept of a method for restoring files on remote servers to a local 
device over a network comprising deriving a first cryptog raphic key and a second 
cryptographic kev from a user-provided passphrase and checking fo r an authentication 
code in the compressed bundle in combination with the cryptographic keys containing at 
least 128 bits, as set forth in claim 8. Cryptographic keys containing at least 128 bits 
ensures greater security. This novel approach is absent in the alleged combination of 
Bailey with Cane. Thus, the Appellant respectfully submits that claim 8 is patentable 
under the provisions of 35 U.S.C. §103. 

7. Claim 9 

The Examiner has rejected claim 9 in the Office Action under 35 U.S.C. §103 as 
being unpatentable over Bailey in view of Cane. Appellant respectfully traverses the 
rejection. 

The teachings of Bailey and Cane are discussed above. 

The Appellant respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination, fails to teach or to suggest the novel concept 
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of deriving a first cryptographic kev and a seco nd cryptographic kev from a user- 
provided passphrase and generating an authentication code for a bundle that is 
ultimately added to and encrypted with the bundle , as positively claimed by the 
Appellant's independent claim 9. Specifically, Appellant's independent claim 9 
positively recites: 

9. A device-readable medium storing program instructions for performing a 
method of backing up one or more files on a local device onto remote servers 
over a network, the method comprising the steps of: 

deriving a first cryptographic kev and a seco nd cryptographic kev from a 
user-provided passphrase : 

compressing one or more files and adding each of the files to a bundle; 

generating an authentication code for the bundle using the first 
cryptographic kev and adding the authenticatio n code to the bundle: and 

encrypting the bundle using the second cryptographic key prior to sending 
the bundle to the remote server. (Emphasis added.) 

In one embodiment, the Appellant's invention provides a device-readable 
medium storing program instructions for backing up files from a local device onto 
remote servers over a network comprising deriving a first cryptographic key and a 
second cryptographic kev from a user-provid ed passphrase and generating an 
authentication code using the first cryptographic kev for a bundle that is ultimately 
added to and encrypted with the bundle . The derivation step is performed after 
proactively checking the passphrase for a necessary amount of entropy. (See e.g., 
Appellant's specification, page 4, para. [0013].) In addition, due to the nature of how the 
bundle is constructed, the file system structure and the file names are advantageously 
hidden from the remote server and from anyone listening in on the network. (See Id. at 
page 6, para. [0016].) Consequently, the strong encryption and authentication 
properties make them tamper evident and opaque to anyone who cannot obtain a user 
passphrase or break the authentication and encryption files. (See Id. at page 7, para. 
[0020].) 

The Appellant respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination fails to teach or to suggest a device-readable 
medium storing program instructions for backing up files from a local device onto 
remote servers over a network comprising deriving a first cryptographic kev and a 
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second cryptographic key from a user-provided passphrase . Bailey explicitly teaches 
that "[t]he second encryption is performed by the transmission program based upon 
internally generated keys ." (See Bailey, col. 17, II. 14-16, emphasis added, see also, 
Bailey, col. 18, II. 26-28, "while the second level of encryption is performed by the 
transmission program that generates its own key .", emphasis added.) 

In addition, Bailey states that the client key is derived from a client selected string 
of characters and the actual encryption key used to encrypt the data is derived from the 
client key . In other words, the actual encryption key is not generated from the string of 
characters, but from the client key instead. (See Bailey Column 17, lines 1-5). Cane 
fails to bridge the substantial gap left by Bailey because Cane specifically teaches using 
a cryptographic engine 14 and key generator 16. (See Cane, col. 3, II. 51 and 56, FIG. 
1.) Similar to the gap found in Bailey, Cane's keys are also not derived from a user- 
provided passphrase. As such, this element in Appellant's claims is completely absent 
in both references. 

Moreover, as indicated by the Examiner on page 3 of the Final Office Action, 
Bailey fails to disclose the generation of an authentication code for the bundle using the 
first cryptographic key and adding the authentication code to the bundle . However, the 
Examiner alleges that Cane teaches this limitation. The Examiner specifically points to 
Cane, col. 4, II. 1-27. 

The Appellant respectfully submits that the Examiner has interpreted Cane too 
broadly and must look at Cane in its entirety. The passage cited by the Examiner 
reads: 

"Transmission may be accomplished via Internet 26, dialup connection 28, or in 
alternative embodiments, other means such as physical delivery of the storage 
medium. Encryption may be performed by any of various known methods, such 
as RSA, DES, and other permutations and may involve authentication and 
verification either through a trusted third party or mathematical methods. Such 
authentication and verification may involve cipher block chaining (CBC), to 
perform an XOR on all or part of a previous block and use the resultant value in 
encrypting a successive block, or checksums such as cyclic redundancy checks 
(CRC), MD4, and MD5, which accumulate all values in a particular block 
according to a mathematical formula to arrive at a value which is highly unlikely 
to be duplicated if data in the block is changed or lost. 0 
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The Appellant respectfully submits that this passage clearly fails to specifically teach 
generating an authentication code using the first cryptograph ic kev for a bundle that is 
ultimately added to and encrypted with the bundle , as positively recited in the 
Appellant's independent claim 9. The portion of the cited passage mentioning 
"transmissions" refers to the transmission of encrypted file 20 and encrypted key 24 
mentioned earlier in the paragraph and not to the following discussion on encryption. 
Therefore, contrary to the Examiner's assertion, this passage does not teach that 
checksums such as CRC. MD4 and MD5 are a part of the "transmission". The 
Appellant respectfully submits that the cited passage in Cane at best generally 
describes the various methods of encryption and authentication and not generating an 
authentication code usina the first cryptographic kev for a bundle that is ultimately 
added to and encrypted with the bundle , as positively claimed by the Appellant's 
independent claim 9. 

Furthermore, the alleged combination (as taught by Cane) clearly teaches away 
from the Appellant's invention because Cane teaches that a master key is obtained and 
used to encrypt a secondary key and produce an encrypted key that is separate from 
the encrypted file. (See Cane, col. 3, II. 56-61, emphasis added.) The encrypted file 
and the encrypted key are then transmitted as separate entities (i.e. not in a single 
bundle or file) to the archive server as indicated in separate steps 116 and 118. (See 
Cane, FIG. 2.) Consequently, the Appellant respectfully submits that independent claim 
9 fully satisfies the requirements of 35 U.S.C. § 103 and is patentable thereunder. 

8. Claim 10 

Claim 10 stands rejected under 35 U.S.C. §103 as being unpatentable over 
Bailey in view of Cane. Appellant respectfully traverses the rejection. 

The Appellant submits that Bailey and Cane do not, in any permissible 
combination, teach, show, or suggest all of the limitations of independent claim 9. Since 
Bailey and Cane do not make obvious the Appellant's invention as recited in Appellant's 
independent claim 9, dependent claim 10 is also not made obvious since the claim 
depends directly from claim 9 and recites additional features of the present invention. 
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Thus, claim 1 0 should be deemed patentable for at least the reasons stated above with 
respect to independent claim 9. 

Secondly, the Appellant contends that the combination of Bailey and Cane does 
not teach the novel concept of a device-readable medium storing program instructions 
for backing up files from a local device onto remote servers over a network comprising 
deriving a first cryptographic kev and a second cryptographic kev from a user-provided 
passohrase and generating an authentication code using the first cryp tographic kev for 
a bundle that is ultimately added to and encrypted with the bundle in combination with 
encrypting the bundle using a strong block cipher, as set forth in claim 10. Encrypting 
the bundle with a strong block cipher ensures greater security. This novel approach is 
absent in the alleged combination of Bailey with Cane. Thus, the Appellant respectfully 
submits that claim 10 is patentable under the provisions of 35 U.S.C. §103. 

9. Claim 12 

Claim 12 stands rejected under 35 U.S.C. §103 as being unpatentable over 
Bailey in view of Cane. Appellant respectfully traverses the rejection. 

The Appellant submits that Bailey and Cane do not, in any permissible 
combination, teach, show, or suggest all of the limitations of independent claim 9. Sinoe 
Bailey and Cane do not make obvious the Appellant's invention as recited in Appellants 
independent claim 9, dependent claim 12 is also not made obvious since the claim 
depends directly from claim 9 and recites additional features of the present invention. 
Thus, claim 12 should be deemed patentable for at least the reasons stated above with 
respect to independent claim 9. 

Secondly, the Appellant contends that the combination of Bailey and Cane does 
not teach the novel concept of a device-readable medium storing program instructions 
for backing up files from a local device onto remote servers over a network comprising 
deriving a first cryptographic kev and a second cryptographic kev from a user-provided 
passohrase and generating an authentication code using the f irst cryptographic kev for 
a bundle that is ultimately added to and encwpted with the bundle in combination with 
the cryptographic keys containing at least 128 bits, as set forth in claim 12. 
Cryptographic keys containing at least 128 bits ensures greater security. This novel 
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approach is absent in the alleged combination of Bailey with Cane. Thus, the Appellant 
respectfully submits that claim 12 is patentable under the provisions of 35 LLS.C. §103. 

10. Claim 13 

The Examiner has rejected claim 13 in the Office Action under 35 U.S.C. §103 as 
being unpatentable over Bailey in view of Cane. Appellant respectfully traverses the 
rejection. 

The teachings of Bailey and Cane are discussed above 

The Appellant respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination, fails to teach or to suggest the novel concept 
of deriving a first cryptographic key and a second crypto graphic kev from a user- 
provided passphrase and checking for an authentication code in the compressed 
bundle , as positively claimed by the Appellant's independent claim 13. Specifically, 
Appellant's independent claim 13 positively recites: 

13. A device-readable medium storing program instructions for performing a 
method of restoring one or more files on remote servers to a local device over a 
network, the method comprising the steps of: 
provided passphraase : 

decrypting a bundle received from the remote server using the second 
cryptographic key; 

checking an authentication code in the bundle using the first cryptographic 
key; and 

decompressing one or more files from the bundle. (Emphasis added.) 

In one embodiment, the Appellant's invention provides a device-readable 
medium storing program instructions for restoring files on remote servers to a local 
device over a network comprising deriving a first cryptographic k ev and a second 
cr yptographic kev from a user-provided passphrase and checking for an authe ntication 
code in the compressed bundle . The derivation step is performed after proactively 
checking the passphrase for a necessary amount of entropy. (See e.g., Appellant's 
specification, page 4, para, [0013].) In addition, due to the nature of how the bundle is 
constructed, the file system structure and the file names are advantageously hidden 
from the remote server and from anyone listening in on the network. (See id. at page 6, 
para. [0016].) Consequently, the strong encryption and authentication properties make 
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them tamper evident and opaque to anyone who cannot obtain a user passphrase or 
break the authentication and encryption files. (See Id. at page 7, para. [0020].) 

The Appellant respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination fails to teach or to suggest a device-readable 
medium storing program instructions for backing up files from a local device onto 
remote servers over a network comprising deriving a fi rst cryptographic key and a 
second cryptographic kev from a user-provided passphrase . Bailey explicitly teaches 
that M [t]he second encryption is performed by the transmission program based upon 
internally generated keys ." (See Bailey, col. 17, II. 14-16, emphasis added, see also, 
Bailey, col. 18, II. 26-28, "while the second level of encryption is performed by the 
transmission program that generates its own key .", emphasis added.) 

In addition, Bailey states that the client key is derived from a client selected string 
of characters and the actual encryption kev used to en crypt the data is derived from the 
client key . In other words, the actual encryption key is riot generated from the string of 
characters, but from the client key instead. (See Bailey Column 17, lines 1-5). Cane 
fails to bridge the substantial gap left by Bailey because Cane specifically teaches using 
a cryptographic engine 14 and key generator 16. (See Cane, col. 3, II. 51 and 56, FIG. 
1 .) Similar to the gap found in Bailey, Cane's keys are also not derived from a user- 
provided passphrase. As such, this element in Appellant's claims is completely absent 
in both references. 

Appellant also respectfully submits that the combination of Bailey and Cane, 
alone or in any permissible combination fails to teach or to suggest a device-readable 
medium storing program instructions for restoring files on remote servers to a local 
device over a network comprising checking fo r an authentication code In the 
compressed bundle . As indicated on page 4 of the Final Office Action by the Examiner, 
Bailey does not expressly disclose the checking of an authentication code in the bundle 
using the first cryptographic key. However, the Examiner alleges that Cane teaches this 
limitation. 

The Appellant respectfully submits that Bailey and Cane do not disclose, mention 
or suggest the checking of an authentication code in a bundle using the first 
cryptographic kev . More specifically, the Appellant contends that Cane only teaches an 
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archive server that first writes the encrypted file to a medium and subsequently writes 
the encrypted key to another medium separately. Notably, the Appellant submits that 
Cane does not teach a checking process of any type. Therefore, the Appellant 
contends that since a bundle comprising an authentication code along with a plurality of 
files is not taught by Cane, it is impossible for the bundle to be checked (i.e., since a 
bundle does not exist.) 

In fact, the alleged combination (as taught by Cane) teaches away from the 
Appellant's invention because the recovery process taught by Cane specifically teaches 
that first the secondary key must be recovered by decrypting the encrypted key with the 
master key , which is located separately on cryptographic engine 14. (See Cane, col. 4, 
II. 27-37, FIG 1.) Then the original file is recovered by decrypting the encrypted file with 
the secondary key, which is also located separately. (See Id.) Consequently, the 
Appellant respectfully submits that independent claim 13 fully satisfies the requirements 
of 35 U.S.C. § 103 and is patentable thereunder. 

1 1 . Claim 14 

Claim 14 stands rejected under 35 U.S.C. §103 as being unpatentable over 
Bailey in view of Cane. Appellant respectfully traverses the rejection. 

The Appellant submits that Bailey and Cane do not, in any permissible 
combination, teach, show, or suggest all of the limitations of independent claim 13. 
Since Bailey and Cane do not make obvious the Appellant's invention as recited in 
Appellant's independent claim 13, dependent claim 14 is also not made obvious since 
the claim depends directly from claim 13 and recites additional features of the present 
invention. Thus, claim 14 should be deemed patentable for at least the reasons stated 
above with respect to independent claim 13. 

Secondly, the Appellant contends that the combination of Bailey and Cane does 
not teach the novel concept of a device-readable medium storing program instructions 
for restoring files on remote servers to a local device over a network comprising deriving 
a first cryptographic key and a second cryptographic kev from a user-provided 
passphrase and checking for an authentication code in the compressed bundle in 
combination with encrypting the bundle using a strong block cipher, as set forth in claim 
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14. Encrypting the bundle with a strong block cipher ensures greater security. This 
novel approach is absent in the alleged combination of Bailey with Cane. Thus, the 
Appellant respectfully submits that claim 14 is patentable under the provisions of 35 
LLS.C. §103. 

12. Claim 16 

Claim 16 stands rejected under 35 U.S.C. §103 as being unpatentable over 
Bailey in view of Cane. Appellant respectfully traverses the rejection. 

The Appellant submits that Bailey and Cane do not, in any permissible 
combination, teach, show, or suggest all of the limitations of independent claim 13. 
Since Bailey and Cane do not make obvious the Appellant's invention as recited in 
Appellant's independent claim 13, dependent claim 16 is also not made obvious since 
the claim depends directly from claim 13 and recites additional features of the present 
invention. Thus, claim 16 should be deemed patentable for at least the reasons stated 
above with respect to independent claim 1 3. 

Secondly, the Appellant contends that the combination of Bailey and Cane does 
not teach the novel concept of a device-readable medium storing program instructions 
for restoring files on remote servers to a local device over a network comprising deriving 
a first cryptographic key and a second cryptographic key from a user-provided 
passphrase and checking for an authentication code in the compressed bundle in 
combination with the cryptographic keys containing at least 128 bits, as set forth in 
claim 16. Cryptographic keys containing at least 128 bits ensures greater security. This 
novel approach is absent in the alleged combination of Bailey with Cane. Thus, the 
Appellant respectfully submits that claim 16 is patentable under the provisions of 35 
U.S.C. §103. 

B. 35 U.S.C. §1 03(a) - Bailey and Cane in view of Walmsley 

1. Claim 3 

The Examiner has rejected claim 3 in the Office Action under 35 U.S.C. § 103 as 
being unpatentable over Bailey in view of Cane, and in further view of Walmsley. 
Appellants respectfully traverse the rejection. 
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The teachings of Bailey and Cane have been discussed above. Walmsley 
teaches "a consumable authentication method for validating the existence of an 
untrusted chip. A random number is encrypted using a first key and sent to an 
untrusted chip. In the untrusted chip it is decrypted using a secret key and re-encrypted 
together with a data message read from the untrusted chip. This is decrypted so that a 
comparison can be with the generated random number and the read data message." 
(See Walmsley, Abstract) 

As discussed above with respect to Appellant's independent claim 1, the 
combination of Bailey and Cane fails to teach, show or suggest the Appellant's 
invention. Specifically, Bailey and Cane fail to disclose the novel concept of a method 
for backing up files from a local device onto remote servers over a network comprising 
deriving a first cryptographic kev and a second cr yptographic kev from a user-provided 
oassohrase and generating an authentication code usi ng the first cryptographic key for 
a bundle that is ultimately added to and encryp ted with the bundle. (See Appellant's 
claim 1 , supra). Furthermore, Walmsley fails to bridge the substantial gap left by Bailey 
and Cane. Walmsley only teaches a consumable authentication method for validating 
the existence of an untrusted chip. (See Walmsley, Abstract.) 

Since Bailey in view of Cane, and in further view of Walmsley do not make 
obvious the Appellant's invention as recited in Appellant's independent claim 1, 
dependent claim 3 is also not made obvious since the claim depends directly from claim 
1 and recites additional features of the present invention. Thus, claim 3 should be 
deemed patentable for at least the reasons stated above with respect to independent 
claim 1 . 

Secondly, the Appellant contends that the combination of Bailey, Cane, and 
Walmsley does not teach the novel concept of a method for backing up files from a local 
device onto remote servers over a network comprising deriving a first cryptographic kev 
and a second cryptographic kev from a user-provided pa ssohrase and generating an 
authentication code usino the first cryptographic kev for a bundle that is ultimately 
added to and encrypted with the bundle in combination with the authentication code 
being an HMAC, as set forth in claim 3. Using an HMAC as the authentication code 
ensures greater security. This novel approach is absent in the alleged combination of 
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Bailey, Cane with Walmsley. Thus, the Appellant respectfully submits that claim 3 is 
patentable under the provisions of 35 U.S.C. §103. 

2. Claim 7 

The Examiner has rejected claim 7 in the Office Action under 35 U.S.C. § 103 as 
being unpatentable over Bailey in view of Cane, and in further view of Walmsley. 
Appellants respectfully traverse the rejection. 

The teachings of Bailey, Cane and Walmsley have been discussed above. 

As discussed above with respect to Appellant's independent claim 5, the 
combination of Bailey and Cane fails to teach, show or suggest the Appellant's 
invention. Specifically, Bailey and Cane fail to disclose the novel concept of a method 
for restoring files on remote servers to a local device over a network comprising deriving 
a first cryptographic key and a second cryptographic key from a user-provided 
passphrase and checking for an authentication code in the compressed bundle . (See 
Appellant's claim 5, supra). Furthermore, Walmsley fails to bridge the substantial gap 
left by Bailey and Cane. Walmsley only teaches a consumable authentication method 
for validating the existence of an untrusted chip. (See Walmsley, Abstract.) 

Since Bailey in view of Cane, and in further view of Walmsley do not make 
obvious the Appellant's invention as recited in Appellant's independent claim 5, 
dependent claim 7 is also not made obvious since the claim depends directly from claim 
5 and recites additional features of the present invention. Thus, claim 7 should be 
deemed patentable for at least the reasons stated above with respect to independent 
claim 5. 

Secondly, the Appellant contends that the combination of Bailey, Cane, and 
Walmsley does not teach the novel concept of a method for restoring files on remote 
servers to a local device over a network comprising deriving a first cryptographic key 
and a second cryptographic key from a user-provided passphrase and checking for an 
authentication code in the compressed bundle in combination with the authentication 
code being an HMAC, as set forth in claim 7. Using an HMAC as the authentication 
code ensures greater security. This novel approach is absent in the alleged 
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combination of Bailey, Cane with Walmsley. Thus, the Appellant respectfully submits 
that claim 7 is patentable under the provisions of 35 U.S.C. §103. 

3. Claim 1 1 

The Examiner has rejected claim 11 in the Office Action under 35 U.S.C. § 103 
as being unpatentable over Bailey in view of Cane, and in further view of Walmsley. 
Appellants respectfully traverse the rejection. 

The teachings of Bailey, Cane and Walmsley have been discussed above. 

As discussed above with respect to Appellant's independent claim 9, the 
combination of Bailey and Cane fails to teach, show or suggest the Appellant's 
invention. Specifically, Bailey and Cane fail to disclose the novel concept of a device- 
readable medium storing program instructions for backing up files from a local device 
onto remote servers over a network comprising deriving a fi rst cryptographic key and a 
second cryptographic kev from a user-provid ed nassphrase and generating an 
authentication code using the first cryptograph ic kev for a bundle that is ultimately 
added to and encrypted with the bundle . (See Appellant's claim 9, supra). 
Furthermore, Walmsley fails to bridge the substantial gap left by Bailey and Cane. 
Walmsley only teaches a consumable authentication method for validating the existence 
of an untrusted chip. (See Walmsley, Abstract.) 

Since Bailey in view of Cane, and in further view of Walmsley do not make 
obvious the Appellant's invention as recited in Appellant's independent claim 9, 
dependent claim 1 1 is also not made obvious since the claim depends directly from 
claim 9 and recites additional features of the present invention. Thus, claim 1 1 should 
be deemed patentable for at least the reasons stated above with respect to independent 
claim 9. 

Secondly, the Appellant contends that the combination of Bailey, Cane, and 
Walmsley does not teach the novel concept of a device-readable medium storing 
program instructions for backing up files from a local device onto remote servers over a 
network comprising deriving a first cryptographic kev a nd a second cryptographic kev 
from a user-provided passphrase and generating an authenti cation code using the first 
cryptographic kev for a bundle that is ultimately added to and encrypted with the bundle 
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in combination with the authentication code being an HMAC, as set forth in claim 11. 
Using an HMAC as the authentication code ensures greater security. This novel 
approach is absent in the alleged combination of Bailey, Cane with Walmsley. Thus, 
the Appellant respectfully submits that claim 11 is patentable under the provisions of 35 
U.S.C. §103. 

4. Claim 15 

The Examiner has rejected claim 15 in the Office Action under 35 U.S.C. § 103 
as being unpatentable over Bailey in view of Cane, and in further view of Walmsley. 
Appellants respectfully traverse the rejection. 

The teachings of Bailey, Cane and Walmsley have been discussed above. 

As discussed above with respect to Appellant's independent claim 13, the 
combination of Bailey and Cane fails to teach, show or suggest the Appellant's 
invention. Specifically, Bailey and Cane fail to disclose the novel concept of a device- 
readable medium storing program instructions for restoring files on remote servers to a 
local device over a network comprising deriving a first cryptographic key and a second 
cryptographic key from a user-provided passohrase and checking for an authentication 
code in the compressed bundle . (See Appellant's claim 13, supra). Furthermore, 
Walmsley fails to bridge the substantial gap left by Bailey and Cane. Walmsley only 
teaches a consumable authentication method for validating the existence of an 
untrusted chip. (See Walmsley, Abstract.) 

Since Bailey in view of Cane, and in further view of Walmsley do not make 
obvious the Appellant's invention as recited in Appellant's independent claim 13, 
dependent claim 15 is also not made obvious since the claim depends directly from 
claim 13 and recites additional features of the present invention. Thus, claim 15 should 
be deemed patentable for at least the reasons stated above with respect to independent 
claim 13. 

Secondly, the Appellant contends that the combination of Bailey, Cane, and 
Walmsley does not teach the novel concept of a device-readable medium storing 
program instructions for restoring files on remote servers to a local device over a 
network comprising deriving a first cryptographic key and a second cryptographic key 
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from a user-provided passphrase and checking for an authentication code in the 
compressed bundle in combination with the authentication code being an HMAC, as set 
forth in claim 15. Using an HMAC as the authentication code ensures greater security. 
This novel approach is absent in the alleged combination of Bailey, Cane with 
Walmsley. Thus, the Appellant respectfully submits that claim 15 is patentable under 
the provisions of 35 U.S.C. §103. 



For the reasons advanced above, the Appellant respectfully urges that the 
rejections of claims 1-16 as being unpatentable under 35 U.S.C. §103 are improper. 
Reversal of the rejections in this appeal is respectfully requested. If necessary, please 
charge any shortage in fees due in connection with the filing of this paper, including 
extension of time fees, to Deposit Account No. 20-0782/ATT2000-0415, and please 
credit any excess fees to the above referenced deposit account. 



CONCLUSION 
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Kin-Wah Tong 

Attorney Reg. No. 39,400 

(732) 530-9404 



Patterson & Sheridan, LLP 



595 Shrewsbury Avenue 
Suite 100 

Shrewsbury, NJ 07702 



PAGE 29/34 * RCVD AT 4/17/2006 10:01:05 PM [Eastern Daylight Time] * SVR:USPTO-EFXRF-6/33 * DNIS:2738300 * CSID:732 530 9808 * DURATION (mm-ss):12-12 



04/17/2006 5l:12 FAX 732 530 9808 



PATTERSON & SHERIDAN - PTO 



0030/034 



BRIEF ON APPEAL 
Serial No. 09/682,526 
Page 26 of 30 

CLAIMS APPENDIX 

1 . A method of backing up one or more files on a local device onto remote servers over 
a network comprising: 

deriving a first cryptographic key and a second cryptographic key from a user- 
provided passphrase; 

compressing one or more files and adding each of the files to a bundle; 

generating an authentication code for the bundle using the first cryptographic key 
and adding the authentication code to the bundle; and 

encrypting the bundle using the second cryptographic key prior to sending the 
bundle to the remote server. 

2. The invention of claim 1 wherein the bundle is encrypted using a strong block cipher. 

3. The invention of claim 1 wherein the authentication code is an HMAC. 

4. The invention of claim 1 wherein the cryptographic keys contain at least 128 bits. 

5. A method of restoring one or more files on remote servers to a local device over a 
network comprising: 

deriving a first cryptographic key and a second cryptographic key from a user- 
provided passphrase; 

decrypting a bundle received from the remote server using the second 
cryptographic key; 

checking an authentication code in the bundle using the first cryptographic key; 

and 

decompressing one or more files from the bundle. 

6. The invention of claim 5 wherein the bundle was encrypted using a strong block 
cipher. 

7. The invention of claim 5 wherein the authentication code is an HMAC. 
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8. The invention of claim 5 wherein the cryptographic keys contain at least 128 bits. 

9. A device-readable medium storing program instructions for performing a method of 
backing up one or more files on a local device onto remote servers over a network, the 
method comprising the steps of: 

deriving a first cryptographic key and a second cryptographic key from a user- 
provided passphrase; 

compressing one or more files and adding each of the files to a bundle; 

generating an authentication code for the bundle using the first cryptographic key 
and adding the authentication code to the bundle; and 

encrypting the bundle using the second cryptographic key prior to sending the 
bundle to the remote server. 

10. The invention of claim 9 wherein the bundle is encrypted using a strong block 
cipher. 

11. The invention of claim 9 wherein the authentication code is an HMAC. 

12. The invention of claim 9 wherein the cryptographic keys contain at least 128 bits. 

13. A device-readable medium storing program instructions for performing a method of 
restoring one or more files on remote servers to a local device over a network, the 
method comprising the steps of: 

deriving a first cryptographic key and a second cryptographic key from a user- 
provided passphrase; 

decrypting a bundle received from the remote server using the second 

cryptographic key; 

checking an authentication code in the bundle using the first cryptographic key; 

and 

decompressing one or more files from the bundle. 

14. The invention of claim 13 wherein the bundle was encrypted using a strong block 
cipher. 
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15. The invention of claim 13 wherein the authentication code is an HMAC. 



16. The invention of claim 13 wherein the cryptographic keys contain at least 128 bits. 
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EVIDENCE APPENDIX 

None 



PACE 33/34 " RCVD AT 4/17/2006 10:01 :05 PM [Eastern Daylight Time] " 8VR:USPTO-EFXRF-6/33 * DN1S:2738300 * CSID:732 530 9808 * DURATION (mm-ss):12-12 



04/17/2006 ll:12 FAX 732 530 9808 



PATTERSON & SHERIDAN - PTO 



g]034/034 



BRIEF ON APPEAL 
Serial No. 09/682,526 
Page 30 of 30 

RELATED PROCEEDINGS APPENDIX 

None 
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